Lucene search
+L

4 matches found

NVD
NVD
added 2024/08/12 1:38 p.m.30 views

CVE-2024-21877

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability through a url parameter in Enphase IQ Gateway formerly known as Envoy allows File Manipulation. The endpoint requires authentication.This issue affects Envoy: from 4.x to 8.0 and 8.2.4225...

9.2CVSS0.00779EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/10 5:44 p.m.28 views

CVE-2024-21877 Insecure File Generation Based on User Input in Enphase IQ Gateway version 4.x to 8.x and < 8.2.4225

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability through a url parameter in Enphase IQ Gateway formerly known as Envoy allows File Manipulation. The endpoint requires authentication.This issue affects Envoy: from 4.x to 8.0 and 8.2.4225...

9.2CVSS6.8AI score0.00779EPSS
Exploits0References3
CVE
CVE
added 2024/08/10 5:44 p.m.74 views

CVE-2024-21877

CVE-2024-21877 describes a path traversal vulnerability in Enphase IQ Gateway (formerly Envoy) that allows file manipulation via a URL parameter. Affected are Enphase IQ Gateway/Envoy versions 4.x through 8.0 and those

9.2CVSS6.5AI score0.00779EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/08/10 5:44 p.m.37 views

CVE-2024-21877 Insecure File Generation Based on User Input in Enphase IQ Gateway version 4.x to 8.x and < 8.2.4225

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability through a url parameter in Enphase IQ Gateway formerly known as Envoy allows File Manipulation. The endpoint requires authentication.This issue affects Envoy: from 4.x to 8.0 and 8.2.4225...

9.2CVSS0.00779EPSS
Exploits0References3
Rows per page
Query Builder